Job Requirements
Lead Network Security Engineer (Secure Web Gateway SWG)
Location: Navi Mumbai/Chennai/Bengaluru/Hyderabad
Experience: 10+ years
Employment Type: Full-time
Role Overview
We are looking for a
Senior Network Security Engineer Secure Web Gateway (SWG) to manage and optimize
enterprise internet access security for users and endpoints in a regulated banking environment.
This role focuses on
secure web access, content inspection, threat protection, and data controls, while collaborating with teams managing
firewalls, ZTNA, and Web/API Protection.
Key Responsibilities
Primary Focus Secure Web Gateway
- Design, configure, and operate Secure Web Gateway (SWG) platforms for enterprise users.
- Define policies for URL filtering, SSL inspection, malware protection, and data protection.
- Monitor web traffic behaviour and investigate policy violations or suspicious activity.
- Optimize policies to balance security, user experience, and performance.
Security Operations & Compliance
- Analyse SWG logs and alerts; integrate telemetry with SIEM and SOC teams.
- Support incident investigations related to web-borne threats and data exposure.
- Ensure SWG controls align with banking security standards and regulatory requirements.
- Maintain operational documentation and audit evidence.
Required Skills
- Strong experience with Secure Web Gateway / proxy-based security platforms.
- Solid understanding of HTTP/S, SSL/TLS inspection, DNS, and web traffic flows.
- Experience implementing user-based and device-based access policies.
- Familiarity with data loss prevention (DLP) policies, content filtering, and network traffic inspection.
- Ability to troubleshoot network and security issues in complex environments.
- Strong understanding of cloud security principles, including SaaS, IaaS, and PaaS.
- Knowledge of security frameworks such as ISO 27001, NIST, or GDPR is a plus.
- Hands-on experience with networking protocols such as HTTP, HTTPS, DNS, and
- TCP/IP.
- Strong communication skills and the ability to collaborate with teams across various functions.
- Certifications in network security (e.g., CCSP, CISSP, CompTIA Security+, or equivalent) are a plus.
- Ability to operate under audit and regulatory scrutiny.
Good to Have
- Exposure to ZTNA access models.
- Understanding of network firewalls and perimeter security.
- Familiarity with Web & API Protection technologies.
- Experience integrating SWG with identity providers and endpoint posture controls.
- Exposure to SASE / SSE frameworks.
